Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/sjEqPzbpjruoozgd7-SKgatE6DY.roa
File: sjEqPzbpjruoozgd7-SKgatE6DY.roa (raw, json)
Hash identifier: JXy+gEztek5XfME4oaATiWj2KKSG7/9uMmFbdRIr+AU=
Subject key identifier: B2:31:2A:3F:36:E9:8E:BB:A8:A3:38:1D:EF:E4:8A:81:AB:44:E8:36
Certificate issuer: /CN=1732f334d8abb68ef822546d8f6f8e81563c6fd9
Certificate serial: 018E46D31FDE2724A7BE8F9EA6C5AAF5AF1A
Authority key identifier: 17:32:F3:34:D8:AB:B6:8E:F8:22:54:6D:8F:6F:8E:81:56:3C:6F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FzLzNNirto74IlRtj2-OgVY8b9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/sjEqPzbpjruoozgd7-SKgatE6DY.roa
Signing time: Sat 16 Mar 2024 10:33:45 +0000
ROA not before: Sat 16 Mar 2024 10:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47951
IP address blocks: 2a13:1d40::/30 maxlen: 30
2a13:1d44::/30 maxlen: 30
Validation: Failed, certificate revoked on Sat 20 Apr 2024 08:13:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:46:d3:1f:de:27:24:a7:be:8f:9e:a6:c5:aa:f5:af:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1732f334d8abb68ef822546d8f6f8e81563c6fd9
Validity
Not Before: Mar 16 10:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2312a3f36e98ebba8a3381defe48a81ab44e836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ce:20:45:47:bf:2c:67:ec:73:d8:d9:5f:84:
64:52:86:8b:47:1a:a1:1f:e4:21:6a:05:f5:31:99:
85:4c:06:c7:cc:ef:9a:2b:9e:e2:78:5c:bb:c1:9a:
a8:8d:6c:68:ba:52:f8:70:d7:57:7e:0e:08:95:4e:
63:b6:72:d3:99:71:2a:bc:dd:96:cc:4f:92:37:d8:
8e:00:fb:9c:e0:28:9f:8f:e8:73:fe:44:ff:85:7d:
8f:ae:5e:48:4c:da:73:08:d5:df:2f:b5:f1:f9:02:
3a:a2:80:04:04:7e:b0:14:fd:27:69:e0:53:cd:83:
1f:69:b9:4f:cc:d1:2e:f1:c0:8c:56:a7:0a:33:af:
c1:7e:51:33:9f:9e:9b:52:2a:57:74:2f:87:d1:a6:
1c:85:f5:a5:8b:f6:db:41:29:63:ec:9a:3d:98:06:
e8:6a:56:e3:80:02:fb:9c:1a:90:7e:cd:52:60:d9:
b7:09:9b:8a:5a:9c:a3:2e:58:51:e4:17:04:41:1e:
4c:9a:1d:bc:cc:ef:d8:e9:c3:ff:ab:3f:36:ad:77:
4a:80:ba:ac:a5:86:82:06:4e:f8:ca:f4:7e:ee:90:
84:bb:c2:0b:25:b5:69:fa:d9:bb:f8:55:fd:0c:5a:
0b:19:a4:0c:d5:12:47:96:76:61:f0:55:78:37:56:
e7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:31:2A:3F:36:E9:8E:BB:A8:A3:38:1D:EF:E4:8A:81:AB:44:E8:36
X509v3 Authority Key Identifier:
keyid:17:32:F3:34:D8:AB:B6:8E:F8:22:54:6D:8F:6F:8E:81:56:3C:6F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FzLzNNirto74IlRtj2-OgVY8b9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/sjEqPzbpjruoozgd7-SKgatE6DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/7bc8da-cb82-4abc-b2f0-13b4b80c54ba/1/FzLzNNirto74IlRtj2-OgVY8b9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1d40::/29
Signature Algorithm: sha256WithRSAEncryption
0c:ab:87:83:5c:14:1c:38:83:f9:b1:e3:f3:dc:c8:42:a0:1e:
b9:5e:e8:19:95:6a:fe:7d:46:1c:84:80:c8:5d:2b:93:e7:1e:
cb:6e:2d:52:88:b8:0c:2b:2c:14:ee:c2:91:a8:48:c2:ce:0f:
f9:1d:d8:1b:f8:63:93:cd:42:99:f4:e3:ab:4d:98:a1:3c:69:
6e:a0:9a:04:ef:46:2b:4f:39:87:51:73:f6:8b:08:6e:c0:cf:
3d:b3:db:92:ff:a8:36:2e:2f:07:af:79:6f:f4:ea:66:a9:3a:
bd:6d:81:18:16:02:15:70:e8:65:d9:6e:01:e0:0d:ad:37:dd:
c0:2a:bb:b7:ca:fb:c4:a1:a6:2e:4a:21:4c:54:33:f6:9d:bb:
78:59:e0:ad:5a:50:86:1d:29:83:7b:6a:3b:98:68:a2:9e:ae:
54:ab:9b:9a:66:57:05:1b:73:a2:07:68:31:4d:1d:39:35:a3:
cd:ae:8a:0a:b6:92:fe:8c:08:05:6a:c5:42:61:a6:01:a1:e8:
74:d0:1b:63:d9:13:9f:e4:a5:e8:d7:d8:a8:e7:fd:08:47:97:
2c:1e:55:38:ee:bb:46:54:e8:22:cb:37:d6:a5:2b:51:1c:e6:
51:60:77:1f:8d:f9:31:22:40:ff:09:2f:9b:d3:5c:50:8c:56:
79:ef:8a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 15:20:46 2024 by rpki-client on console.sobornost.net